x0rz @x0rz@mastodon.social

Tweets are automatically forwarded from https://twitter.com/x0rz

Si le forensique système ou réseau t'intéresse (dans une optique de réponse à incident), le @CERT_FR recrute des analystes en investigation numérique https://talents.ssi.gouv.fr/offresdemploi/expert-e-en-investigation-numerique #DFIR #ANSSI

s/hashes/hashes of the signing certificate/

s/hashes/hashes of the signing certificate/

Couldn't agree more https://t.co/RflSmctGRY

As of 16/11/2020, Apple made this an optional "feature" and made sure to encrypt such requests. But damn. https://support.apple.com/en-us/HT202491

ICYMI, macOS used to send *unencrypted* hashes of every program you run and the corresponding timestamp & location (IP based). I expect this kind of privacy-intrusive behavior from an AV, but not directly from an OS... https://sneak.berlin/20201112/your-computer-isnt-yours/

Also, wear your masks 😷 works great against both coronavirus and facial recognition

Selling a C2 framework

"for pentesters"

yeah sure https://t.co/W9l2SFDLJq

Some great hardening/containment tips against ransomware (but also applies to other threats) by @FireEye https://www.fireeye.com/content/dam/fireeye-www/current-threats/pdfs/wp-ransomware-protection-and-containment-strategies.pdf (PDF)

How it started How it’s going https://t.co/fsauNU09mh

You’re literally driving researchers away and encouraging them to go on the black market... and in the end it’s only disserving you (and your valued customers, lol)

ICYMI, « The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) is issuing this advisory to highlight the sanctions risks associated with ransomware payments related to malicious cyber-enabled activities. » https://home.treasury.gov/system/files/126/ofac_ransomware_advisory_10012020_1.pdf #ransomware

Reminder that attackers are also participating in the #CyberSecMonth. In fact they participate 12 months a year, for maximum awareness. https://t.co/1l3NBbZyP0

War footage on TikTok, 2020 https://t.co/5Ujf0HjdtJ

Because 2020 wasn’t enough now we have fucking cybernetic stray dogs on the streets https://twitter.com/bioodtear/status/1309325280146788352

SNAFU

Cheap tactics can work, especially against cybercrime threats such as #Emotet and others https://github.com/NavyTitanium/Fake-Sandbox-Artifacts #malware

US gov: let's impose sanctions against Iran

PayPal devs: say no more fam https://twitter.com/TirandoaVioleta/status/1300483152167735296

Overloading phishing websites with fake data is actually a very effective way to prevent mass phishing campaign from being successful https://blog.haschek.at/2020/stopping-phishing-campaigns-with-bash.html